If you follow best practices, your ESXi and vCenter Server can be as secure as or even more secure than an environment that does not include virtualization.

This manual includes best practices for the different components of your vSphere infrastructure.

Table 1. Security Best Practices

vSphere component


ESXi host

VMware uses only secured ESXi hosts with up-to-date security patches in your VMware Cloud on AWS environment.

vCenter Server system

VMware uses secured vCenter Server Appliance instances.

Virtual machine

See Securing Virtual Machines in Managing Virtual Machines on AWS.

vSphere Networking

VMware uses NSX for vSphere to secure your VMware Cloud on AWS networking stack.

This document is only one of the sources you need to ensure a secure environment.

VMware security resources, including security alerts and downloads, are available on the Web.

Table 2. VMware Security Resources on the Web



VMware security policy, up-to-date security alerts, security downloads, and focus discussions of security topics.


Corporate security response policy


VMware is committed to helping you maintain a secure environment. Security issues are corrected in a timely manner. The VMware Security Response Policy states our commitment to resolve possible vulnerabilities in our products.

Third-party software support policy


VMware supports a variety of storage systems, software agents such as backup agents, system management agents, and so forth. You can find lists of agents, tools, and other software that supports ESXi by searching http://www.vmware.com/vmtn/resources/ for ESXi compatibility guides.

The industry offers more products and configurations than VMware can test. If VMware does not list a product or configuration in a compatibility guide, Technical Support will attempt to help you with any problems, but cannot guarantee that the product or configuration can be used. Always evaluate security risks for unsupported products or configurations carefully.

Compliance and security standards, as well as partner solutions and in-depth content about virtualization and compliance


Information on security certifications and validations such as CCEVS and FIPS for different versions of the components of vSphere.


Hardening guides for different versions of vSphere and other VMware products.


The Security of the VMware vSphere Hypervisor white paper explains how the ESXi hypervisor is secured. For VMware Cloud on AWS, you do not have to perform additional configuration.